CVE-2024-4362 | SiteOrigin Widgets Bundle Plugin up to 1.60.0 on WordPress Shortcode siteorigin_widget cross site scripting

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability was found in SiteOrigin Widgets Bundle Plugin up to 1.60.0 on WordPress and classified as problematic. This issue affects the function siteorigin_widget of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-4362. The attack may be initiated remotely. There is no exploit available.

CVE-2024-4362 | SiteOrigin Widgets Bundle Plugin up to 1.60.0 on WordPress Shortcode siteorigin_widget cross site scripting

Related Posts

CVE-2024-44552 | Tenda AX1806 1.0.0.1 formGetIptv adv.iptv.stballvlans stack-based overflow

CVE-2022-29966 | Emerson Ovation up to 3.8.0 FP1 missing authentication (icsa-24-158-02)

CVE-2024-6108 | Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05 Login vood_view.cgi errmsg cross site scripting

CVE-2023-50932 | Savignano SNotify up to 4.0.1 on Confluence Setting cross-site request forgery